lockbit2 attacks Hany AG
Incident Date:
March 2, 2022
Overview
Title
lockbit2 attacks Hany AG
Victim
Hany AG
Attacker
Lockbit2
Location
First Reported
March 2, 2022
Hany AG Suffers Ransomware Attack, Operates in Construction Sector
Hany AG, a company specializing in pumps and system technology for the rein- and abwasserbewirtschaftung (wastewater management) on both communal and industrial levels, as well as in haustechnik and gebäudetechnik (household and building technology), has been targeted by the ransomware group Lockbit2. The company's website provides information about their products and services, including mass-customized PE-products like pumpenschächte and schlammsammler (pump shafts and sludge collectors) and injektionssysteme zur Abdichtung und Verstärkung des Baugrundes (injection systems for ground reinforcement).
Hany AG's size and industry-specific focus are not explicitly mentioned in the search results. However, the company's website indicates that they operate in the construction sector, which is a common target for ransomware attacks due to the potential for disrupting critical infrastructure and causing significant financial damage.
The vulnerabilities that made Hany AG a target for Lockbit2 are not explicitly stated in the search results. However, ransomware attackers often exploit poor credential hygiene and legacy configurations, which can be found in many organizations, regardless of their size or industry.
In the past, ransomware attackers have targeted organizations with higher revenues and specific industries for the shock value or type of data they can exfiltrate. The Lockbit2 group, like many other ransomware actors, uses a human-operated approach, varying their attack patterns based on their discoveries and exploiting weaknesses in their targets' systems.
To protect against ransomware attacks, organizations should focus on improving their security posture by addressing vulnerabilities, implementing robust access controls, and investing in cybersecurity training and awareness programs.
Sources
- Hany AG Website: www.haeny.com
- Carolina Foods Ransomware Attack: qcnews.com
- US Radiology Ransomware Attack: therecord.media
- Ransomware as a Service: microsoft.com
- Ransomware Minute: cybersecurityventures.com
- AG Healey's Urgent Call to Protect Operations from Ransomware Attacks: mass.gov
Recent Ransomware Attacks
The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.
The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.